SCALE 14X. The Bare-Metal Hypervisor as a Platform for Innovation. By Russell Pavlicek Xen Project Evangelist
|
|
- Cody Watson
- 6 years ago
- Views:
Transcription
1 SCALE 14X The Bare-Metal Hypervisor as a Platform for Innovation By Russell Pavlicek Xen Project Evangelist
2 About the Old, Fat Geek Up Front Linux user since 1995; became a Linux advocate immediately Delivered many early talks on Open Source Advocacy Former Open Source columnist for Infoworld, Processor magazines Former weekly panelist on The Linux Show Wrote one of the first books on Open Source: Embracing Insanity: Open Source Software Development 30 years in the industry; 20+ years in software services consulting Recently Evangelist for the Xen Project (until tomorrow; now looking for other opportunities) Over 100 FOSS talks delivered; over 200 FOSS pieces published
3 About Innovation... A favorite buzzword for marketing purposes Many things in our industry labeled Innovation are nothing more than hackneyed placid tripe Innovation calls for thinking of the world in a different way and seeing it come to life Simply changing the shade of lipstick on a pig does not qualify
4 About Innovation... Real innovation can borrow from the known to create the unknown Many innovations are reassemblies of known objects in a new way Example: many cloud concepts resemble similar concepts in mainframes, but they've been reapplied to a multi-server environment But the net result needs to be something significantly different than what existed before
5 Some of the More Interesting Advances Xen Automotive: the effort to craft an embedded automotive infotainment system Realtime virtualization: work to facilitate applications which need realtime processing ARM-based hypervisor: enabling a new breed of applications, from servers to cell phones, on the ARM architecture MirageOS and other unikernel systems: creating highly-dense farms of ultra-small and secure cloud appliances
6 But First... What exactly is a Bare-Metal Hypervisor?
7 Hypervisor Architectures Type 1: Bare metal Hypervisor A pure Hypervisor that runs directly on the hardware and hosts Guest OS s. VM n VM 1 VM 0 Guest OS and Apps Hypervisor Scheduler Device Drivers/Models MMU Host HW I/O Memory CPUs Provides partition isolation + reliability, higher security
8 Hypervisor Architectures Type 1: Bare metal Hypervisor A pure Hypervisor that runs directly on the hardware and hosts Guest OS s. Type 2: OS Hosted A Hypervisor that runs within a Host OS and hosts Guest OS s inside of it, using the host OS services to provide the virtual environment. VM n VM 1 VM 0 User Apps User-level VMM Device Models VM n VM 1 VM 0 Hypervisor Device Drivers/Models Guest OS and Apps Scheduler MMU Host OS Device Drivers Guest OS and Apps Ring-0 VM Monitor Kernel Host HW I/O Memory CPUs Host HW I/O Memory CPUs Provides partition isolation + reliability, higher security Low cost, no additional drivers Ease of use & installation
9 Xen Project: Type 1 with a Twist Type 1: Bare metal Hypervisor VM n VM 1 VM 0 Guest OS and Apps Hypervisor Scheduler Device Drivers/Models MMU Host HW I/O Memory CPUs
10 Xen Project: Type 1 with a Twist Type 1: Bare metal Hypervisor Xen Project Architecture VM n Hypervisor VM 1 VM 0 Guest OS and Apps Scheduler VM n VM 1 VM 0 Guest OS and Apps Device Drivers/Models MMU Hypervisor Scheduler MMU Host HW I/O Memory CPUs Host HW I/O Memory CPUs
11 Xen Project: Type 1 with a Twist Type 1: Bare metal Hypervisor Xen Project Architecture Control domain (dom0) VM n VM 1 Device Models VM n VM 0 VM 1 Hypervisor Guest OS and Apps Scheduler Drivers Linux & BSD VM 0 Guest OS and Apps Device Drivers/Models MMU Hypervisor Scheduler MMU Host HW I/O Memory CPUs Host HW I/O Memory CPUs
12 Some Bare-Metal Advantages What are the advantages of a Bare-Metal Hypervisor? Density: It's thin Excellent for supporting very small workloads Scalability: It can support huge numbers of VMs Terrific for highly dense workloads Security: No host OS It has no host OS layer to attack Scheduling: Can use dedicated scheduler Needed for specialized workload profiles where a host OS scheduler just won't do Paravirtualization: Simplified interface Easier to code to when no OS is present And now some of the innovations they enable...
13 #1: Xen Automotive A subproject of the Xen Project Proposed by community member GlobalLogic Support for infotainment systems (for now...) Eliminates multiple discreet systems needing sourcing, installation, and testing ARM-based
14 Automotive Challenges Soft-Real-time support Hard-Real-time support GPU virtualization Other co-processor (DSP, IPU, etc.) Certification Driver support for Android, e.g. Backend ION memory allocator and Linux User Space Device Drivers for Graphics, Sound, USB, Giros, GPS, etc. Driver support for operating systems such as QNX and other guest operating systems that are relevant for these use-cases
15 A Focused Hypervisor Automotive requires extreme focus Simply repurposing a server-based hypervisor won't cut it A Bare-Metal hypervisor can add and modify pieces as needed There is no legacy Host Operating System to be accommodated Bare-Metal can do what the situation requires
16 #2: Realtime Virtualization Support for Xen Automotive and beyond RT-Xen Streaming video, etc. cannot wait for next time slice Leverages a custom scheduler
17 Custom Schedulers Type 2 (Hosted) Hypervisors use the scheduler of the host (e.g., Linux) That scheduler is designed for the host operating system, not for special needs Type 1 (Bare Metal) Hypervisors use schedulers designed for the needs of the hypervisor itself It is possible to change the scheduler to meet the needs of the hypervisor That's the way to handle Realtime Scheduling
18 A Scheduler for Every Need Current schedulers in Xen Project: Credit General Purpose Default scheduler in 4.5 Credit2 Optimized for low latency & high VM density Currently Experimental Expected to become supported and default in future
19 A Scheduler for Every Need Current schedulers in Xen Project (continued): RTDS Soft & Firm Realtime scheduler Multicore Currently Experimental Embedded, Automotive, Graphics, Gaming in the Cloud ARINC 653 Hard Realtime Single Core Currently Experimental Avionics, Drones, Medical
20 A Scheduler for Every Need Past schedulers in Xen Project: Borrowed Virtual Time Atropos Round Robin SEDF (removed in Xen Project 4.6) For more information:
21 #3: ARM-based Hypervisor ARM expanding from handhelds to servers Virtualization extensions added to ARM V7 Architecture is hand-in-glove fit for Bare- Metal hypervisor No mode changes means greater speed and security
22 Xen + ARM = a perfect Match ARM SOC ARM Architecture Features for Virtualization User mode : EL0 Device Tree describes I/O Kernel mode : EL1 Hypercall Interface HVC GT GIC v2 2 stage MMU Hypervisor mode : EL2
23 Xen + ARM = a perfect Match ARM SOC ARM Architecture Features for Virtualization EL0 Device Tree describes I/O EL1 HVC GT GIC v2 2 stage MMU EL2 Xen Hypervisor
24 Xen + ARM = a perfect Match ARM SOC ARM Architecture Features for Virtualization Device Tree describes EL0 Any Xen Guest VM (including Dom0) User Space Kernel I/O EL1 HVC GT GIC v2 2 stage MMU EL2 Xen Hypervisor
25 Xen + ARM = a perfect Match ARM SOC ARM Architecture Features for Virtualization Device Tree describes I/O GT Dom0 only GIC v2 PV back 2 stage MMU EL0 PV front EL1 EL2 Any Xen Guest VM (including Dom0) Xen Hypervisor User Space Kernel HVC
26 Where Will an ARM Hypervisor Play? You name it... Cell phones Multiple personalities are possible Embedded systems Automotive is just the beginning; Trains are already here! Internet of Things (IoT) Lots of little things means lots of responses needed Servers Lower power footprint Real green technology
27 #4: The Unikernel Super-small VMs Quick booting Enhanced security Easy deployment Enables transient services Services that appear when needed and disappear when done
28 The Cloud We Know Field of innovation is in the orchestration The Cloud Engine is paramount (OpenStack, CloudStack, etc.) Workloads adapted to the cloud strongly resemble their noncloud predecessors Some basic adaptations to facilitate life in the cloud, but basically the same stuff that was used before the cloud Applications with full stacks (operating system, utilities, languages, and apps) which could basically run on hardware, but are run on VMs instead. VMs are beefy; large memory footprint, slow to start up It all works, but its not overly efficient 10s of VMs per physical host
29 The Next Generation Cloud Turning the scrutiny to the workloads Should be easier to deploy and manage Smaller footprint, removing unnecessary duplication Faster startup Transient microservices Higher levels of security 1000s of VMs per host
30 The New Stuff: Docker & Containers Makes deployment easier Smaller footprint by leveraging kernel of host Less memory needed to replicate shared kernel space Less disk needed to replicate shared executables Really fast startup times Higher number of VMs per host
31 Docker Downsides Improvements, yes; but not without issues Can't run any payload that can't use host kernel Potential limits to scaleability Linux not really optimized for 1000s of processes Security Security is a HUGE issue in clouds Still working on security mechanisms Will users employ the security mechanisms or pick the quickand-easy deployment which has made Containers popular?
32 The Unikernel: A Real Cloud Concept Very small Very efficient Very quick to boot And very, VERY secure! It's a Green (energy) technology which saves you green (cash); extremely important to foster adoption Many unikernels already exist, including Mini-OS and MirageOS, a Xen Project Incubator Project
33 What is a Unikernel? From MirageOS
34 Unikernel Approach: MirageOS
35 Unikernel Approach: MirageOS
36 Unikernel Approach: MirageOS
37 Unikernel Concepts Use just enough to do the job No need for multiple users; one VM per user No need for a general purpose operating system No need for utilities No need for a full set of operating system functions Lean and mean Minimal waste Tiny size
38 Unikernel Concepts Similar to an embedded application development environment Limited debugging available for deployed production system Instead, system failures are reproduced and analyzed on a full operating system stack and then encapsulated into a new image to deploy Tradeoff is required for ultralight images
39 What Do the Results Look Like? MirageOS examples: DNS Server: 449 KB Web Server: 674 KB OpenFlow Learning Switch: 393 KB LING metrics: Boot time to shell in under 100ms Erlangonxen.org memory usage: 8.7 MB ClickOS: Network devices processing >5 million pkt/sec 6 MB memory with 30 ms boot time
40 What About Security? Type-Safe Solution Stack Can be certified Certification is crucial for certain highly critical tasks, like airplane fly-by-wire control systems Image footprints are unique to the image Intruders cannot rely on always finding certain libraries No utilities to exploit, no shell to manipulate
41 What's Out There Right Now? MirageOS, from the Xen Project Incubator HaLVM, from Galois LING, from Erlang-on-Xen ClickOS, from NEC Europe Labs OSv, from Cloudius Systems Rumprun, from the Rump Kernel Project And that's just the beginning...
42 How Does Xen Project Enable Unikernels? No Host OS means it's lean and mean A tiny VM can sit on a thin hypervisor layer on the hardware Attack surface is small Scale out support Can currently support about 600 concurrent VMs per host without losing performance Current target: concurrent VMs per host Enhanced scheduler (Credit2) ARM as an option
43 Innovation: Is This All? By no means! The list of other subprojects & capabilities continues to grow: Virtualized GPUs Enhanced NUMA COLO: Coarse-grained lockstepping of VMs Native VMware VMDK support And so on...
44 In Review... Some advantages of a Bare-Metal Hypervisor Density: It's thin Excellent for supporting very small workloads Scalability: It can support huge numbers of VMs Terrific for highly dense workloads Security: No host OS It has no host OS layer to attack Scheduling: Can use dedicated scheduler Needed for specialized workload profiles where a host OS scheduler just won't do Paravirtualization: Simplified interface Easier to code to when no OS is present
45 The Xen Project Difference Tomorrow's workloads are not yesterday's workloads If your hypervisor is just focused on yesterday's payloads, it is suffering from planned obsolescence Select a hypervisor which is innovating and Open Source Xen Project is busy enabling the next generation in virtualization
46 Questions? Actively looking for a new opportunity This presentation is available in the Presentations Section of XenProject.org
47 Basic Xen Project Concepts Control domain (dom0) Dom0 Kernel Hypervisor Scheduler Host HW I/O MMU Memory XSM CPUs VM n VM 1 VM 0 Guest OS and Apps Trusted Computing Base 47 Console Interface to the outside world Control Domain aka Dom0 Dom0 kernel with drivers Xen Management Toolstack Guest Domains Your apps Driver/Stub/Service Domain(s) A driver, device model or control service in a box De-privileged and isolated Lifetime: start, stop, kill
48 Basic Xen Project Concepts: Toolstack+ Control domain (dom0) Host HW I/O Toolstack Dom0 Kernel Hypervisor Scheduler Console MMU Memory XSM CPUs VM n VM 1 VM 0 Guest OS and Apps Trusted Computing Base 48 Console Interface to the outside world Control Domain aka Dom0 Dom0 kernel with drivers Xen Management Toolstack Guest Domains Your apps Driver/Stub/Service Domain(s) A driver, device model or control service in a box De-privileged and isolated Lifetime: start, stop, kill
49 Basic Xen Project Concepts: Disaggregation Control domain (dom0) Host HW I/O Toolstack Dom0 Kernel Hypervisor Scheduler Console MMU Memory One or more driver, stub or service domains XSM CPUs VM n VM 1 VM 0 Guest OS and Apps Trusted Computing Base 49 Console Interface to the outside world Control Domain aka Dom0 Dom0 kernel with drivers Xen Management Toolstack Guest Domains Your apps Driver/Stub/Service Domain(s) A driver, device model or control service in a box De-privileged and isolated Lifetime: start, stop, kill
LISA The Next Generation Cloud: Unleashing the Power of the Unikernel. Russell Pavlicek Xen Project Evangelist
LISA 2015 The Next Generation Cloud: Unleashing the Power of the Unikernel Russell Pavlicek Xen Project Evangelist Russell.Pavlicek@XenProject.org About the Old, Fat Geek Up Front Linux user since 1995;
More informationXen Project 4.4: Features and Futures. Russell Pavlicek Xen Project Evangelist Citrix Systems
Xen Project 4.4: Features and Futures Russell Pavlicek Xen Project Evangelist Citrix Systems About This Release Xen Project 4.4.0 was released on March 10, 2014. This release is the work of 8 months of
More informationUnikernels in Action
Unikernels in Action 28 January 2018, DevConf.cz, Brno Michael Bright, Developer Evangelist @ Slides online @ https://mjbright.github.io/talks/2018-jan-28_devconf.cz_unikernels 1 / 31 Agenda What are Unikernels?
More informationUnikernels? Thomas [Twitter]
Unikernels? Thomas Gazagnaire @samoht [GitHub] @eriangazag [Twitter] http://gazagnaire.org/pub/2015.12.loops.pdf About me... PhD at INRIA in Distributed Systems Citrix on Xen/Xenserver OCamlPro on Opam
More information64-bit ARM Unikernels on ukvm
64-bit ARM Unikernels on ukvm Wei Chen Senior Software Engineer Tokyo / Open Source Summit Japan 2017 2017-05-31 Thanks to Dan Williams, Martin Lucina, Anil Madhavapeddy and other Solo5
More informationXen on ARM. Stefano Stabellini
Xen on ARM Stefano Stabellini What is Xen? a type-1 hypervisor small footprint (less than 90K LOC) Xen: Open Source GPLv2 with DCO (like Linux) Diverse contributor community Xen: Open Source source: Mike
More informationIBM Research Report. A Comparison of Virtualization Technologies for Use in Cloud Data Centers
H-0330 (HAI1801-001) January 3, 2018 Computer Science IBM Research Report A Comparison of Virtualization Technologies for Use in Cloud Data Centers Joel Nider IBM Research Division Haifa Research Laboratory
More informationVirtualization. Michael Tsai 2018/4/16
Virtualization Michael Tsai 2018/4/16 What is virtualization? Let s first look at a video from VMware http://www.vmware.com/tw/products/vsphere.html Problems? Low utilization Different needs DNS DHCP Web
More informationXen and the Art of Virtualization
Xen and the Art of Virtualization Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield Presented by Thomas DuBuisson Outline Motivation
More informationSecurity and Performance Benefits of Virtualization
Security and Performance Benefits of Virtualization Felix Baum mentor.com/embedded Android is a trademark of Google Inc. Use of this trademark is subject to Google Permissions. Linux is the registered
More informationCSC 5930/9010 Cloud S & P: Virtualization
CSC 5930/9010 Cloud S & P: Virtualization Professor Henry Carter Fall 2016 Recap Network traffic can be encrypted at different layers depending on application needs TLS: transport layer IPsec: network
More informationModule 1: Virtualization. Types of Interfaces
Module 1: Virtualization Virtualization: extend or replace an existing interface to mimic the behavior of another system. Introduced in 1970s: run legacy software on newer mainframe hardware Handle platform
More informationVirtualization. Dr. Yingwu Zhu
Virtualization Dr. Yingwu Zhu Virtualization Definition Framework or methodology of dividing the resources of a computer into multiple execution environments. Types Platform Virtualization: Simulate a
More informationSpring 2017 :: CSE 506. Introduction to. Virtual Machines. Nima Honarmand
Introduction to Virtual Machines Nima Honarmand Virtual Machines & Hypervisors Virtual Machine: an abstraction of a complete compute environment through the combined virtualization of the processor, memory,
More informationXen Automotive Hypervisor Automotive Linux Summit 1-2 July, Tokyo
Xen Automotive Hypervisor Automotive Linux Summit 1-2 July, Tokyo 2014 GlobalLogic Inc. Vehicles are Changing Vehicle became the ultimate mobile device and we, the people, are becoming connected drivers
More informationCSE543 - Computer and Network Security Module: Virtualization
CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger CSE543 - Introduction to Computer and Network Security 1 Operating System Quandary Q: What is the primary goal of system
More informationCLOUD COMPUTING IT0530. G.JEYA BHARATHI Asst.Prof.(O.G) Department of IT SRM University
CLOUD COMPUTING IT0530 G.JEYA BHARATHI Asst.Prof.(O.G) Department of IT SRM University What is virtualization? Virtualization is way to run multiple operating systems and user applications on the same
More informationCSE543 - Computer and Network Security Module: Virtualization
CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger CSE543 - Introduction to Computer and Network Security 1 1 Operating System Quandary Q: What is the primary goal of
More informationCSE 120 Principles of Operating Systems
CSE 120 Principles of Operating Systems Spring 2018 Lecture 16: Virtual Machine Monitors Geoffrey M. Voelker Virtual Machine Monitors 2 Virtual Machine Monitors Virtual Machine Monitors (VMMs) are a hot
More information10 Steps to Virtualization
AN INTEL COMPANY 10 Steps to Virtualization WHEN IT MATTERS, IT RUNS ON WIND RIVER EXECUTIVE SUMMARY Virtualization the creation of multiple virtual machines (VMs) on a single piece of hardware, where
More informationXen and the Art of Virtualization. Nikola Gvozdiev Georgian Mihaila
Xen and the Art of Virtualization Nikola Gvozdiev Georgian Mihaila Outline Xen and the Art of Virtualization Ian Pratt et al. I. The Art of Virtualization II. Xen, goals and design III. Xen evaluation
More informationAbstract. Testing Parameters. Introduction. Hardware Platform. Native System
Abstract In this paper, we address the latency issue in RT- XEN virtual machines that are available in Xen 4.5. Despite the advantages of applying virtualization to systems, the default credit scheduler
More informationIntroduction to virtualisation, hardware, cloud, containers, unikernels, microkernels. and everything else
Introduction to virtualisation, hardware, cloud, containers, unikernels, microkernels. and everything else What s driving us? Smaller Faster Efficient Secure Cloud, infrastructure and virtualisation Smaller,
More informationLecture 5: February 3
CMPSCI 677 Operating Systems Spring 2014 Lecture 5: February 3 Lecturer: Prashant Shenoy Scribe: Aditya Sundarrajan 5.1 Virtualization Virtualization is a technique that extends or replaces an existing
More informationTransforming XenServer into a proper open-source project
Transforming XenServer into a proper open-source project James Bulpin CTO, XenServer, Citrix About the speaker James Bulpin Head of technology for XenServer group in Citrix; member of the Citrix CTO office
More information@amirmc UNIKERNELS WHERE ARE THEY NOW? AMIR CHAUDHRY. Open Source Summit NA 13 Sep 2017
@amirmc UNIKERNELS WHERE ARE THEY NOW? AMIR CHAUDHRY Open Source Summit NA 13 Sep 2017 OVERVIEW Unikernel refresher Status updates: MirageOS, IncludeOS, HaLVM, Solo5 Summary Questions? REFRESHER UNIKERNEL
More informationFIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS
WHITE PAPER FIVE REASONS YOU SHOULD RUN CONTAINERS ON BARE METAL, NOT VMS Over the past 15 years, server virtualization has become the preferred method of application deployment in the enterprise datacenter.
More informationAdvanced Cloud Infrastructures
Advanced Cloud Infrastructures From Data Centers to Fog Computing (part 1) Guillaume Pierre Master 2 CCS & SIF, 2017 Advanced Cloud Infrastructures 1 / 35 Advanced Cloud Infrastructures 2 / 35 Advanced
More informationThe only open-source type-1 hypervisor
Monika Danikáková What is Xen? The only open-source type-1 hypervisor For Unix and Unix-like OS Linux, NetBSD and OpenSolaris From ancient greek term Xenos (ξένος), guest-friends Developed by the University
More informationVirtual Machine Security
Virtual Machine Security CSE443 - Spring 2012 Introduction to Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ 1 Operating System Quandary Q: What is the primary goal
More informationOperating Systems 4/27/2015
Virtualization inside the OS Operating Systems 24. Virtualization Memory virtualization Process feels like it has its own address space Created by MMU, configured by OS Storage virtualization Logical view
More informationOriginally prepared by Lehigh graduate Greg Bosch; last modified April 2016 by B. Davison
Virtualization Originally prepared by Lehigh graduate Greg Bosch; last modified April 2016 by B. Davison I. Introduction to Virtualization II. Virtual liances III. Benefits to Virtualization IV. Example
More informationXen and CloudStack. Ewan Mellor. Director, Engineering, Open-source Cloud Platforms Citrix Systems
Xen and CloudStack Ewan Mellor Director, Engineering, Open-source Cloud Platforms Citrix Systems Agenda What is CloudStack? Move to the Apache Foundation CloudStack architecture on Xen The future for CloudStack
More informationVirtualization Introduction
Virtualization Introduction Simon COTER Principal Product Manager Oracle VM & VirtualBox simon.coter@oracle.com https://blogs.oracle.com/scoter November 21 st, 2016 Safe Harbor Statement The following
More informationVirtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018
Virtual Machines Disco and Xen (Lecture 10, cs262a) Ion Stoica & Ali Ghodsi UC Berkeley February 26, 2018 Today s Papers Disco: Running Commodity Operating Systems on Scalable Multiprocessors, Edouard
More informationCSE543 - Computer and Network Security Module: Virtualization
CSE543 - Computer and Network Security Module: Virtualization Professor Trent Jaeger CSE543 - Introduction to Computer and Network Security 1 Operating System Quandary Q: What is the primary goal of system
More informationBackground. IBM sold expensive mainframes to large organizations. Monitor sits between one or more OSes and HW
Virtual Machines Background IBM sold expensive mainframes to large organizations Some wanted to run different OSes at the same time (because applications were developed on old OSes) Solution: IBM developed
More informationVirtualization, Xen and Denali
Virtualization, Xen and Denali Susmit Shannigrahi November 9, 2011 Susmit Shannigrahi () Virtualization, Xen and Denali November 9, 2011 1 / 70 Introduction Virtualization is the technology to allow two
More informationUnikernels: Who, What, Where, When, Why?
Unikernels: Who, What, Where, When, Why? Adam Wick (awick@galois.com) Xen Developer Summit August 19th, 2014 2014 Galois, Inc. All rights reserved. HALVM! mini OS Which? When? Why?? HALVM! mini OS? Unikernel:
More informationLINUX Virtualization. Running other code under LINUX
LINUX Virtualization Running other code under LINUX Environment Virtualization Citrix/MetaFrame Virtual desktop under Windows NT. aka Windows Remote Desktop Protocol VNC, Dameware virtual console. XWindows
More informationCHAPTER 16 - VIRTUAL MACHINES
CHAPTER 16 - VIRTUAL MACHINES 1 OBJECTIVES Explore history and benefits of virtual machines. Discuss the various virtual machine technologies. Describe the methods used to implement virtualization. Show
More informationLINUX CONTAINERS. Where Enterprise Meets Embedded Operating Environments WHEN IT MATTERS, IT RUNS ON WIND RIVER
Where Enterprise Meets Embedded Operating Environments WHEN IT MATTERS, IT RUNS ON WIND RIVER EXECUTIVE SUMMARY Flexible and connected platforms are core components in leading computing fields, including
More informationNested Virtualization and Server Consolidation
Nested Virtualization and Server Consolidation Vara Varavithya Department of Electrical Engineering, KMUTNB varavithya@gmail.com 1 Outline Virtualization & Background Nested Virtualization Hybrid-Nested
More informationARMv8 port of the Jailhouse hypervisor
Security Level: ARMv8 port of the Jailhouse hypervisor Antonios Motakis antonios.motakis@huawei.com Version: V1.0(20160321) Huawei Technologies Duesseldorf GmbH Acknowledgements Jan Kiszka, SIEMENS (Upstream
More informationOS Virtualization. Linux Containers (LXC)
OS Virtualization Emulate OS-level interface with native interface Lightweight virtual machines No hypervisor, OS provides necessary support Referred to as containers Solaris containers, BSD jails, Linux
More informationViryaOS RFC: Secure Containers for Embedded and IoT. A proposal for a new Xen Project sub-project
ViryaOS RFC: Secure Containers for Embedded and IoT A proposal for a new Xen Project sub-project Stefano Stabellini @stabellinist The problem Package applications for the target Contain all dependencies
More informationCOMPUTER ARCHITECTURE. Virtualization and Memory Hierarchy
COMPUTER ARCHITECTURE Virtualization and Memory Hierarchy 2 Contents Virtual memory. Policies and strategies. Page tables. Virtual machines. Requirements of virtual machines and ISA support. Virtual machines:
More informationMultiprocessor Scheduling. Multiprocessor Scheduling
Multiprocessor Scheduling Will consider only shared memory multiprocessor or multi-core CPU Salient features: One or more caches: cache affinity is important Semaphores/locks typically implemented as spin-locks:
More informationVirtualization. Pradipta De
Virtualization Pradipta De pradipta.de@sunykorea.ac.kr Today s Topic Virtualization Basics System Virtualization Techniques CSE506: Ext Filesystem 2 Virtualization? A virtual machine (VM) is an emulation
More informationHypervisor security. Evgeny Yakovlev, DEFCON NN, 2017
Hypervisor security Evgeny Yakovlev, DEFCON NN, 2017 whoami Low-level development in C and C++ on x86 UEFI, virtualization, security Jetico, Kaspersky Lab QEMU/KVM developer at Virtuozzo 2 Agenda Why hypervisor
More informationXen Project Status Ian Pratt 12/3/07 1
Xen Project Status Ian Pratt 12/3/07 1 Project Status xen.org and the Xen Advisory Board Xen project mission Ubiquitous virtualization Realizing Xen s architectural advantages From servers to clients Interoperability
More informationVirtualization Overview
VMware W Hwhite I T E Ppaper A P E R Virtualization Overview Table of Contents Introduction... 3 Virtualization in a Nutshell... 3 Virtualization Approaches... 4 Virtualization for Server Consolidation
More informationOperating System Security
Operating System Security Operating Systems Defined Hardware: I/o...Memory.CPU Operating Systems: Windows or Android, etc Applications run on operating system Operating Systems Makes it easier to use resources.
More informationVirtualizaton: One Size Does Not Fit All. Nedeljko Miljevic Product Manager, Automotive Solutions MontaVista Software
Virtualizaton: One Size Does Not Fit All Nedeljko Miljevic Product Manager, Automotive Solutions MontaVista Software Agenda Linux and Automotive Challenges Solution: Virtualization Linux Containers Best
More informationVirtualization with XEN. Trusted Computing CS599 Spring 2007 Arun Viswanathan University of Southern California
Virtualization with XEN Trusted Computing CS599 Spring 2007 Arun Viswanathan University of Southern California A g e n d a Introduction Virtualization approaches Basic XEN Architecture Setting up XEN Bootstrapping
More informationCan "scale" cloud applications "on the edge" by adding server instances. (So far, haven't considered scaling the interior of the cloud).
Recall: where we are Wednesday, February 17, 2010 11:12 AM Recall: where we are Can "scale" cloud applications "on the edge" by adding server instances. (So far, haven't considered scaling the interior
More informationJanus: A-Cross-Layer Soft Real- Time Architecture for Virtualization
Janus: A-Cross-Layer Soft Real- Time Architecture for Virtualization Raoul Rivas, Ahsan Arefin, Klara Nahrstedt UPCRC, University of Illinois at Urbana-Champaign Video Sharing, Internet TV and Teleimmersive
More informationAchieving safe, certified, multicore avionics systems with Separation Kernel Hypervisors
Safety & Security for the Connected World Achieving safe, certified, multicore avionics systems with Separation Kernel Hypervisors 13 October 2015 Mark Pitchford, Technical Manager, EMEA Achieving safe,
More informationDeflating the hype: Embedded Virtualization in 3 steps
Deflating the hype: Embedded Virtualization in 3 steps Klaas van Gend MontaVista Software LLC For Embedded Linux Conference Europe 2010, Cambridge Agenda Why multicore made the topic more relevant Partitioning
More informationReal-Time Systems and Intel take industrial embedded systems to the next level
Solution brief Industrial IoT (IIoT) Embedded Software and Systems Real-Time Systems and Intel take industrial embedded systems to the next level Innovative hypervisor and partitioning software increases
More informationHeterogeneous Real-Time SoC Software Architecture
Heterogeneous Real-Time SoC Software Architecture Presented By Stefano Stabellini Principal System Software Engineer Introduction Stefano Stabellini Xen Project: Founder of the Xen on Arm effort in late
More informationThe Architecture of Virtual Machines Lecture for the Embedded Systems Course CSD, University of Crete (April 29, 2014)
The Architecture of Virtual Machines Lecture for the Embedded Systems Course CSD, University of Crete (April 29, 2014) ManolisMarazakis (maraz@ics.forth.gr) Institute of Computer Science (ICS) Foundation
More informationMy VM is Lighter (and Safer) than your Container
My VM is Lighter (and Safer) than your Container Filipe Manco, Florian Schmidt, Simon Kuenzer, Kenichi Yasukata, Sumit Sati, Costin Lupu*, Costin Raiciu*, Felipe Huici NEC Europe Ltd, *University Politehnica
More informationTowards Massive Server Consolidation
Towards Massive Server Consolidation Filipe Manco, João Martins, Felipe Huici {filipe.manco,joao.martins,felipe.huici}@neclab.eu NEC Europe Ltd. Xen Developer Summit 2014 Agenda 1. Use Cases and Goals
More informationCOS 318: Operating Systems. Virtual Machine Monitors
COS 318: Operating Systems Virtual Machine Monitors Prof. Margaret Martonosi Computer Science Department Princeton University http://www.cs.princeton.edu/courses/archive/fall11/cos318/ Announcements Project
More informationIntroduction to Cloud Computing and Virtualization. Mayank Mishra Sujesha Sudevalayam PhD Students CSE, IIT Bombay
Introduction to Cloud Computing and Virtualization By Mayank Mishra Sujesha Sudevalayam PhD Students CSE, IIT Bombay Talk Layout Cloud Computing Need Features Feasibility Virtualization of Machines What
More informationExperiences with OracleVM 3.3
Experiences with OracleVM 3.3 Hans Forbrich Oracle ACE Director Forbrich Consulting Ltd Based in Alberta, Canada Why I use Oracle VM Oracle shop Oracle product licensing Hard Partitioning Fixed servers
More informationLightVMs vs. Unikernels
1. Introduction LightVMs vs. Unikernels Due to the recent developments in technology, present day computers are so powerful that they are often times under-utilized. With the advent of virtualization,
More informationHow Parallels RAS Enhances Microsoft RDS. White Paper Parallels Remote Application Server
How Parallels RAS Enhances Microsoft RDS White Paper Parallels Remote Application Server Table of Contents Introduction... 3 Overview of Microsoft Remote Desktop Services... 3 Microsoft RDS Pain Points...
More informationReVirt: Enabling Intrusion Analysis through Virtual Machine Logging and Replay
ReVirt: Enabling Intrusion Analysis through Virtual Machine Logging and Replay Or We Can Remember It for You Wholesale (with apologies to Philip K. Dick) George Dunlap, Sam King, SukruCinar, MurtazaBasraiand
More informationReal-Time Internet of Things
Real-Time Internet of Things Chenyang Lu Cyber-Physical Systems Laboratory h7p://www.cse.wustl.edu/~lu/ Internet of Things Ø Convergence of q Miniaturized devices: integrate processor, sensors and radios.
More informationWhat Makes Up the Modern Linux OS?
White Paper by David Davis, ActualTech Media What Makes Up the Modern Linux OS? In this Paper The History of Linux... 2 The Components that Comprise the Linux Operating System... 3 What Is a Distribution?...
More informationCSCI 8530 Advanced Operating Systems. Part 19 Virtualization
CSCI 8530 Advanced Operating Systems Part 19 Virtualization Virtualization This is a very old idea It appears in many different forms A variety of commercial products exist The idea has become hot again
More informationCSE Computer Security
CSE 543 - Computer Security Lecture 25 - Virtual machine security December 6, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ 1 Implementation and Results Experimental Platform Exact specification
More informationDistributed Systems COMP 212. Lecture 18 Othon Michail
Distributed Systems COMP 212 Lecture 18 Othon Michail Virtualisation & Cloud Computing 2/27 Protection rings It s all about protection rings in modern processors Hardware mechanism to protect data and
More informationUnikernels: Who, What, Where, When, Why?
Unikernels: Who, What, Where, When, Why? Adam Wick (awick@galois.com) QCon SF November 4th, 2014 2014 Galois, Inc. All rights reserved. HALVM mini OS Which? When? Why?? HALVM mini OS? Unikernel: (a.k.a.
More informationXen and the Art of Virtualization. CSE-291 (Cloud Computing) Fall 2016
Xen and the Art of Virtualization CSE-291 (Cloud Computing) Fall 2016 Why Virtualization? Share resources among many uses Allow heterogeneity in environments Allow differences in host and guest Provide
More informationA Big Little Hypervisor for IoT Development February 2018
A Big Little Hypervisor for IoT Development February 2018 Contents PROJECT OVERVIEW TECHNICAL OVERVIEW GOVERNANCE JOIN US! PROJECT OVERVIEW Current State of Affairs IoT Development IoT device devices requires
More information1 Virtualization Recap
1 Virtualization Recap 2 Recap 1 What is the user part of an ISA? What is the system part of an ISA? What functionality do they provide? 3 Recap 2 Application Programs Libraries Operating System Arrows?
More informationVirtualization and memory hierarchy
Virtualization and memory hierarchy Computer Architecture J. Daniel García Sánchez (coordinator) David Expósito Singh Francisco Javier García Blas ARCOS Group Computer Science and Engineering Department
More informationWHY SHOULD I USE OVM. For Oracle Databases By Francisco Munoz Alvarez Oracle Professional Services Manager
WHY SHOULD I USE OVM For Oracle Databases By Francisco Munoz Alvarez Oracle Professional Services Manager Francisco Munoz Alvarez Some Certifications 8/9i/10g/11g OCP, RAC OCE, AS OCA, E- Business OCP,
More informationFeature Comparison Summary
Feature Comparison Summary, and The cloud-ready operating system Thanks to cloud technology, the rate of change is faster than ever before, putting more pressure on IT. Organizations demand increased security,
More informationSuperfluidity: A Superfluid, Cloud-Native, Converged Edge System
Superfluidity: A Superfluid, Cloud-Native, Converged Edge System Call: H2020-ICT-2014-2 Topic: ICT 14 2014: Advanced 5G Network Infrastructure for the Future Internet Project Coordinator: Nicola Blefari
More informationWritten and Provided by. Expert Reference Series of White Papers. Virtualization Overview
Written and Provided by Expert Reference Series of White Papers Virtualization Overview 1-800-COURSES www.globalknowledge.com VMWARE WHITE PAPER Virtualization Overview Introduction Virtualization Overview
More informationPaperspace. Architecture Overview. 20 Jay St. Suite 312 Brooklyn, NY Technical Whitepaper
Architecture Overview Copyright 2016 Paperspace, Co. All Rights Reserved June - 1-2017 Technical Whitepaper Paperspace Whitepaper: Architecture Overview Content 1. Overview 3 2. Virtualization 3 Xen Hypervisor
More informationFeature Comparison Summary
Feature Comparison Summary,, and The cloud-ready operating system is the cloud-ready operating system that delivers new layers of security and Azure-inspired innovation for the applications and infrastructure
More informationVirtualization Overview
VMWARE W HWHITE I T E PPAPER A P E R Virtualization Overview 1 Table of Contents Introduction... 3 Virtualization in a Nutshell... 3 Virtualization Approaches... 4 Virtualization for Server Consolidation
More informationCloud Computing Virtualization
Cloud Computing Virtualization Anil Madhavapeddy anil@recoil.org Contents Virtualization. Layering and virtualization. Virtual machine monitor. Virtual machine. x86 support for virtualization. Full and
More informationWhat is Cloud Computing? Cloud computing is the dynamic delivery of IT resources and capabilities as a Service over the Internet.
1 INTRODUCTION What is Cloud Computing? Cloud computing is the dynamic delivery of IT resources and capabilities as a Service over the Internet. Cloud computing encompasses any Subscriptionbased or pay-per-use
More informationPerformance Evaluation of Virtualization Technologies
Performance Evaluation of Virtualization Technologies Saad Arif Dept. of Electrical Engineering and Computer Science University of Central Florida - Orlando, FL September 19, 2013 1 Introduction 1 Introduction
More informationHow it can help your organisation
How it can help your organisation History Types of Virtualisation & Hypervisors Virtualisation Features Why Virtualisation? Virtualising Oracle Performance Licensing Support Cloud 1998 VMware founded by
More informationIBM Bluemix compute capabilities IBM Corporation
IBM Bluemix compute capabilities After you complete this section, you should understand: IBM Bluemix infrastructure compute options Bare metal servers Virtual servers IBM Bluemix Container Service IBM
More informationUnikernels. No OS? No problem! Kevin Sapper ABSTRACT
Unikernels No OS? No problem! Kevin Sapper Hochschule RheinMain Unter den Eichen 5 Wiesbaden, Germany kevin.b.sapper@student.hs-rm.de ABSTRACT Unikernels aim to reduce the layers and dependencies modern
More informationServer Virtualization Approaches
Server Virtualization Approaches Virtual Machine Applications Emulation Replication Composition Emulation: Mix-and-match cross-platform portability Replication: Multiple VMs on single platform Composition:
More informationUsing a Separation Kernel to Protect against the Remote Exploitation of Unaltered Passenger Vehicles
Safety & Security for the Connected World Using a Separation Kernel to Protect against the Remote Exploitation of Unaltered Passenger Vehicles 16 th June 2015 Mark Pitchford, Technical Manager, EMEA Today
More informationMulticore Computing and the Cloud Optimizing Systems with Virtualization
Multicore Computing and the Cloud Optimizing Systems with Virtualization Michael Gschwind IBM Systems and Technology Group IBM Corporation Major Forces Are Driving the Need For IT Transformation Operational
More informationCS 550 Operating Systems Spring Introduction to Virtual Machines
CS 550 Operating Systems Spring 2018 Introduction to Virtual Machines 1 How to share a physical computer Operating systems allows multiple processes/applications to run simultaneously Via process/memory
More informationLecture 7. Xen and the Art of Virtualization. Paul Braham, Boris Dragovic, Keir Fraser et al. 16 November, Advanced Operating Systems
Lecture 7 Xen and the Art of Virtualization Paul Braham, Boris Dragovic, Keir Fraser et al. Advanced Operating Systems 16 November, 2011 SOA/OS Lecture 7, Xen 1/38 Contents Virtualization Xen Memory CPU
More informationBack To The Future: A Radical Insecure Design of KVM on ARM
Back To The Future: A Radical Insecure Design of KVM on ARM Abstract In ARM, there are certain instructions that generate exceptions. Such instructions are typically executed to request a service from
More informationCSE 237B Fall 2009 Virtualization, Security and RTOS. Rajesh Gupta Computer Science and Engineering University of California, San Diego.
CSE 237B Fall 2009 Virtualization, Security and RTOS Rajesh Gupta Computer Science and Engineering University of California, San Diego. Overview What is virtualization? Types of virtualization and VMs
More information